Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194061	7.8	重要 Local	Debian Terminology project	-	Terminology における任意のコマンドを実行される脆弱性	CWE-77 コマンドインジェクション	CVE-2015-8971	2017-02-6 17:32	2015-08-17	Show	GitHub Exploit DB Packet Storm

194062	7.8	重要 Local	マイクロソフト	-	Microsoft Skype における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5720	2017-02-6 17:04	2016-09-27	Show	GitHub Exploit DB Packet Storm

194063	8.4	重要 Local	ownCloud	-	ownCloud Desktop における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2016-7102	2017-02-6 16:24	2016-08-17	Show	GitHub Exploit DB Packet Storm

194064	5.9	警告 Network	ownCloud	-	ownCloud サーバにおける任意の画像をダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5876	2017-02-6 16:24	2016-07-13	Show	GitHub Exploit DB Packet Storm

194065	9.8	緊急 Network	シックス・アパート株式会社	-	複数の Movable Type 製品における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-5742	2017-02-6 16:23	2016-06-22	Show	GitHub Exploit DB Packet Storm

194066	7.5	重要 Network	GStreamer	-	GStreamer の vmnc デコーダにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2016-9445	2017-02-6 15:49	2016-11-16	Show	GitHub Exploit DB Packet Storm

194067	7.5	重要 Local	シトリックス・システムズ Xen プロジェクト	-	Xen の pygrub ブートローダエミュレータにおけるホスト上の任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2016-9380	2017-02-6 15:48	2016-11-22	Show	GitHub Exploit DB Packet Storm

194068	7.9	重要 Local	シトリックス・システムズ Xen プロジェクト	-	Xen の pygrub ブートローダエミュレータにおけるホスト上の任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2016-9379	2017-02-6 15:48	2016-11-22	Show	GitHub Exploit DB Packet Storm

194069	9.8	緊急 Network	OpenSLP	-	OpenSLP の common/slp_compare.c の SLPFoldWhiteSpace 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-7567	2017-02-6 15:48	2016-09-27	Show	GitHub Exploit DB Packet Storm

194070	5.5	警告 Local	libdwarf project	-	libdwarf の dwarf_loc.c の _dwarf_read_loc_section 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2016-7410	2017-02-6 15:48	2016-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293561	-	lotus_web_studios_inc	smoothflash	SQL injection vulnerability in admin_view_image.php in Smoothflash allows remote attackers to execute arbitrary SQL commands via the cid parameter.	CWE-89 SQL Injection	CVE-2008-1623	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293562	-	lotus_web_studios_inc	smoothflash	Additional information can be found at: http://www.securityfocus.com/bid/28503	CWE-89 SQL Injection	CVE-2008-1623	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293563	-	whorl_ltd	jshop_server	Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter.	CWE-22 Path Traversal	CVE-2008-1624	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293564	-	raven_php_scripts	keep_it_simple_guest_book	Directory traversal vulnerability in view_private.php in Keep It Simple Guest Book (KISGB) 5.0.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in…	CWE-22 Path Traversal	CVE-2008-1635	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293565	-	neat_web	neat-web	SQL injection vulnerability in index.php in Neat weblog 0.2 allows remote attackers to execute arbitrary SQL commands via the articleId parameter in a show action, probably related to the showArticle…	CWE-89 SQL Injection	CVE-2008-1639	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293566	-	jgs-xa	jgs_treffen	SQL injection vulnerability in jgs_treffen.php in the JGS-XA JGS-Treffen 2.0.2 and earlier addon for Woltlab Burning Board (wBB) allows remote attackers to execute arbitrary SQL commands via the view…	CWE-89 SQL Injection	CVE-2008-1640	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293567	-	guillaume_meister	php_spammanager	Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote attackers to read arbitrary local files via a .. (dot dot) in the filename parameter.	CWE-22 Path Traversal	CVE-2008-1645	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293568	-	arnos_toolbox wordpress	wp-download wp_download	SQL injection vulnerability in wp-download.php in the WP-Download 1.2 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the dl_id parameter.	CWE-89 SQL Injection	CVE-2008-1646	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293569	-	chilkat_software	chilkathttp_activex	The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, whi…	CWE-20 Improper Input Validation	CVE-2008-1647	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm

293570	-	adobe	flash_player	Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote attackers to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigat…	CWE-352 Origin Validation Error	CVE-2008-1654	2017-09-29 10:30	2008-04-3	Show	GitHub Exploit DB Packet Storm